setStrictCheckingDefault

public static void setStrictCheckingDefault(boolean strict)

Determines the default setting for Strict Certificate checking of
subsequent instances of this adapter class. A value of
false means instances will accept flawed
certificates from the server but warn.
This value can also be set with the following system property:

weblogic.webservice.client.ssl.strictcertchecking

Parameters:

strict - the default setting for strict certificate checking

setVerbose

public void setVerbose(boolean verbose)

This method is used to enable or disabled verbose debugging
output. This value can also be set with the following system
property:

weblogic.webservice.client.verbose

Parameters:

verbose - the default setting for strict certificate checking

setTrustedCertificatesFile

public void setTrustedCertificatesFile(java.lang.String filename)

Sets the name of the file from which the set of trusted CA certs
will be loaded. The file should contain PEM encoded certificates.
Cannot be used after the Adapter has been used.

getIdentity

Gets an authentication chain that will be used for the given algorithm.
The system manages multiple certificate chains, which is useful for
client authenticaiton when the server requests a cert chain signed by a
specific trusted root.

In a server, only the first authentication chain added to the system
is used, though multiple chains may be added.

removeIdentity

public final void removeIdentity(java.security.cert.X509Certificate certificate)

setProtocolVersion

public final void setProtocolVersion(java.lang.String version)

This sets the hello policy for clients.

When a client sends a hello message to a server, a preferred protocol
version is sent. The server responds with an offer to use that protocol
or a different one. The policy defines what to do when the negotiated
protocol version is other than preferred. This has some security
implications, though as of this writing the SSL3 and TLS protocol
versions have not been successfully attacked.

It is safe to send the SSL2 hello message even when the only allowed
versions are SSL3 and TLS. This is commonly done to allow a graceful
exit when no common protocol can be negotiated.

"TLS" means that a TLS hello is sent; the client will accept SSL3 or TLS.
"SSL3" means that a SSL3 hello is sent; the client will accept SSL3 or SSL2.
"TLS1/2HI" means that a SSL2 hello is sent; the client will accept SSL3 or TLS.
"SSL3/2HI" means that a SSL2 hello is sent; the client will accept SSL3 or SSL2.
"TLS1-ONLY" means that a TLS hello is sent; the client will accept TLS.
"SSL3-ONLY" means that a SSL3 hello is sent; the client will accept SSL3.
"ANY" is synonymous with "TLS1/2HI"